$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: SbvI0aBNTb21dEWLk7fLdgjwpP8/Y2MmTbUJoWBAs+g= Subject key identifier: BF:EC:A2:CD:3B:0D:AD:0B:EC:E8:C3:4E:B1:94:86:E6:AE:75:BF:74 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 032A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 0323 Signing time: Wed 25 Mar 2026 00:45:12 +0000 Manifest this update: Wed 25 Mar 2026 00:45:11 +0000 Manifest next update: Wed 01 Apr 2026 00:45:11 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: aAen9H6hyvhxZMPMIMHkQLlHmjonVnULNzGV4m9OSo4=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: q+aeOJgllUvaXxmahDweOCiCHQM4aB3x3nz/0WBTZiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Mar 25 00:45:11 2026 GMT Not After : Apr 1 00:45:11 2026 GMT Subject: CN=69c33017-f126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:e9:71:e3:1c:48:e1:4a:48:f7:26:18:ab: 11:15:dd:b1:47:64:0b:59:6e:10:99:bc:f5:63:20: 29:77:d3:88:b9:db:b1:9d:05:bb:10:be:8d:39:14: 49:fd:ea:ac:cb:a2:8c:4c:83:11:9d:50:21:85:49: ec:7b:10:6c:f1:47:37:5a:0a:01:a0:5c:ea:35:53: e5:34:6e:fc:7d:1e:c1:dc:5b:20:d6:8f:4c:33:29: d1:f6:c4:8a:bb:ff:5a:98:2d:02:bd:74:14:b7:51: 2e:39:04:06:96:ed:80:49:7a:1c:05:0b:16:5c:6e: 08:55:3a:97:50:5b:c5:6e:72:79:02:5e:d7:6e:d0: c8:ba:aa:67:b9:a1:09:06:9d:ee:f8:f0:28:cf:e5: 08:37:76:64:c5:cf:92:80:e6:0d:db:23:c9:3e:15: 03:e9:bd:2f:0a:95:d2:83:a7:7d:df:57:36:3f:e4: 0d:a0:11:78:0e:6e:be:19:8a:bf:74:67:c0:1b:de: 94:9d:ea:b8:94:e0:ef:55:25:21:27:54:2b:07:9b: 24:a8:09:d4:35:a9:da:d7:1c:29:5d:e5:3b:75:24: a7:9b:fd:92:c9:4b:04:b3:3a:73:32:2e:95:16:cc: 8a:ab:03:59:14:bf:16:35:40:5a:53:85:26:e5:03: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EC:A2:CD:3B:0D:AD:0B:EC:E8:C3:4E:B1:94:86:E6:AE:75:BF:74 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:86:bf:b9:15:d5:7d:cf:0c:35:82:b7:73:48:64:21:7b:03: 63:fb:f3:c4:09:dd:bd:39:93:f3:d0:23:00:bb:ff:98:b7:91: 02:db:c7:c7:43:0b:41:77:72:bd:4f:3c:14:ec:3b:2a:c7:e0: 3e:d2:bb:e0:70:20:0c:3e:01:f2:e0:26:43:a9:9f:b5:c2:d0: b9:9d:b1:ec:63:f4:93:db:7e:30:8e:50:7f:8a:77:16:27:c9: 6a:eb:ab:34:57:b9:9a:c0:55:a2:80:47:89:1d:0b:fe:aa:0a: fc:cd:a0:dc:2b:6d:85:43:f4:89:7b:3f:40:6a:fc:cb:22:be: 5d:cc:6a:6a:6e:e9:45:30:ec:1c:da:8c:36:64:70:f8:0b:0b: 4d:cb:5b:19:fc:02:ea:f9:af:59:a9:c6:c3:ad:75:01:3b:dd: c0:df:7e:dc:09:34:01:33:69:88:4a:13:85:3b:d8:e1:f6:f2: cf:9d:b5:a0:e6:35:d9:e3:5a:47:39:e7:72:df:49:4d:40:d6: 0f:09:ad:c0:bf:8c:6c:6c:50:ce:51:71:03:5b:64:4a:ef:de: ce:46:6f:05:1a:7d:38:fd:6f:64:5e:4d:4d:99:af:e2:c6:0a: 94:83:9c:76:f0:89:c0:4b:76:ef:b1:f5:10:ad:c0:cd:b8:a5: b2:be:08:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjYwMzI1MDA0NTExWhcNMjYwNDAxMDA0NTExWjAYMRYwFAYD VQQDEw02OWMzMzAxNy1mMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp/pceMcSOFKSPcmGKsRFd2xR2QLWW4Qmbz1YyApd9OIuduxnQW7EL6NORRJ /eqsy6KMTIMRnVAhhUnsexBs8Uc3WgoBoFzqNVPlNG78fR7B3Fsg1o9MMynR9sSK u/9amC0CvXQUt1EuOQQGlu2ASXocBQsWXG4IVTqXUFvFbnJ5Al7XbtDIuqpnuaEJ Bp3u+PAoz+UIN3Zkxc+SgOYN2yPJPhUD6b0vCpXSg6d931c2P+QNoBF4Dm6+GYq/ dGfAG96Uneq4lODvVSUhJ1QrB5skqAnUNana1xwpXeU7dSSnm/2SyUsEszpzMi6V FsyKqwNZFL8WNUBaU4Um5QObPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL/sos07 Da0L7OjDTrGUhuaudb90MB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeIa/uRXVfc8MNYK3c0hkIXsDY/vzxAndvTmT89AjALv/mLeRAtvHx0MLQXdy vU88FOw7KsfgPtK74HAgDD4B8uAmQ6mftcLQuZ2x7GP0k9t+MI5Qf4p3FifJauur NFe5msBVooBHiR0L/qoK/M2g3CtthUP0iXs/QGr8yyK+Xcxqam7pRTDsHNqMNmRw +AsLTctbGfwC6vmvWanGw611ATvdwN9+3Ak0ATNpiEoThTvY4fbyz521oOY12eNa Rznnct9JTUDWDwmtwL+MbGxQzlFxA1tkSu/ezkZvBRp9OP1vZF5NTZmv4sYKlIOc dvCJwEt277H1EK3Azbilsr4IUw== -----END CERTIFICATE-----Generated at Thu Mar 26 06:27:52 2026 by rpki-client